Data transmission method, data transmitter, data receiver, and system

ABSTRACT

The present application discloses example methods and systems. In one example method, sound wave information associated with a data transmission is monitored within a predetermined distance from the client device, where the sound wave information including predetermined security information. In response to detecting sound wave information associated with a data transmission, the sound wave information is parsed to obtain the predetermined security information included in the detected sound wave information. Pattern information is generated based on the predetermined security information and data information to be sent. The generated pattern information is then displayed so that a second device can obtain the generated pattern information.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a continuation of U.S. application Ser. No.16/193,201, filed on Nov. 16, 2018, which is a continuation of PCTApplication No. PCT/CN2017/086067, filed on May 26, 2017, which claimspriority to Chinese Patent Application No. 201610398687.8, filed on Jun.7, 2016, and each application is hereby incorporated by reference in itsentirety.

TECHNICAL FIELD

The present application relates to the field of informationtechnologies, and in particular, to a data transmission method, a datatransmitter, a data receiver, and a system.

BACKGROUND

With the rapid development and wide application of smart mobile devicessuch as mobile phones and tablet computers, more and more users areinclined to use smart mobile devices in daily work, life and study.Thus, there are more and more scenarios of near-field transmissionbetween devices, such as mobile phone payment, electronic coupondiscount, business card exchange, and cross-device web page navigation,etc.

At present, the most widely used method for near-field transmissionbetween devices is as follows: A receiving device obtains data to besent by a transmitting device by scanning an information pattern such asa quick response (QR) code or barcode displayed by the transmittingdevice to implement data transfer between the devices. In addition, thisdata transmission method allows the receiving device and thetransmitting device to implement data transmission without networkconnection.

The previously described implementation of data transmission is simpleand easy to operate. However, if the information pattern such as the QRcode or the barcode in the transmitting device is obtained by amalicious user through photographing, etc., data information of the userowning the transmitting device is leaked, and the data security of thetransmitting device is threatened. What's worse, if the informationpattern to be sent by the transmitting device includes asset transactioninformation, the malicious user can perform asset transaction throughthe stolen information pattern, bringing unnecessary economic loss tothe user of the transmitting device.

SUMMARY

In view of this, the implementations of the present application providea data transmission method, a data transmitter, a data receiver, and asystem. The present application is mainly intended to prevent patterninformation in a transmitter device from being leaked, thereby ensuringdata information security of the user of the transmitter.

To achieve the previously described objective, the following technicalsolutions are provided in the present application:

According to a first aspect, the present application provides a datatransmission method, and the data transmission method includes:monitoring, by a data transmitter, sound wave information includingpredetermined security information within a predetermined distance;parsing the sound wave information and obtaining the predeterminedsecurity information in the sound wave information; generating patterninformation based on the predetermined security information and datainformation that is to be sent; and outputting and displaying thepattern information so that a data receiver can obtain the patterninformation.

According to a second aspect, the present application provides a datatransmission method, and the data transmission method includesgenerating, by a data receiver, sound wave information includingpredetermined security information and broadcasting the sound waveinformation; obtaining pattern information displayed by a datatransmitter, where the pattern information includes data information andpredetermined security information that is to be checked; authenticatingthe predetermined security information that is to be checked in thepattern information; and obtaining the data information in the patterninformation if the authentication of the predetermined securityinformation that is to be checked succeeds.

According to a third aspect, the present application provides a datatransmitter, and the data transmitter includes: a monitoring unit,configured to monitor sound wave information including predeterminedsecurity information within a predetermined distance; a parsing unit,configured to parse the sound wave information when the monitoring unitdetects the sound wave information including the predetermined securityinformation within the predetermined distance; an acquisition unit,configured to obtain the predetermined security information in the soundwave information in the process in which the parsing unit parses thesound wave information; a generating unit, configured to generatepattern information based on the predetermined security informationobtained by the acquisition unit and data information that is to besent; and an output display unit, configured to output display thepattern information generated by the generating unit so that a datareceiver can obtain the pattern information.

According to a fourth aspect, the present application provides a datareceiver, and the data receiver includes: a generating unit, configuredto generate sound wave information including predetermined securityinformation; a broadcast unit, configured to broadcast the sound waveinformation generated by the generating unit; a first acquisition unit,configured to obtain pattern information displayed by a datatransmitter, where the pattern information includes data information andpredetermined security information that is to be checked; anauthentication unit, configured to authenticate the predeterminedsecurity information that is to be checked and obtained by the firstacquisition unit; and a second acquisition unit, configured to obtainthe data information in the pattern information if the authenticationunit determines that the authentication of the predetermined securityinformation that is to be checked succeeds.

According to a fifth aspect, the present application provides a datatransmission system. The system includes the previously described datatransmitter and the previously described data receiver.

With the above technical solutions, the technical solutions provided bythe implementations of the present application have at least thefollowing advantages:

According to the data transmission method, the data transmitter, thedata receiver, and the system provided in the present application,before the data transmitter transmits the data to the data receiver, thedata transmitter first monitors the sound wave information including thepredetermined security information within the predetermined distance,parses the detected sound wave information, and obtains thepredetermined security information in the sound wave information. Thenthe data transmitter generates the pattern information based on thepredetermined security information obtained and the data informationthat is to be sent. Finally the data transmitter outputs and displaysthe pattern information after generating the pattern information so thatthe data receiver authenticates the predetermined security informationin the sound wave information. Compared with the existing technology,the pattern information generated by the data transmitter in theimplementation of the present application includes the predeterminedsecurity information generated by the data receiver. The predeterminedsecurity information is generated by the data receiver based on apredetermined transmission period. Predetermined security informationsent in different predetermined transmission periods is different. Assuch, the pattern information including the predetermined securityinformation sent by the data transmitter dynamically changes. After thedata receiver authenticates the predetermined security information inthe pattern information, secure data transmission can be performed. Thepattern information in the data transmitter is prevented from beingstolen by a malicious user, thereby ensuring the security of the datainformation of the user of the data transmitter.

The previous description is only an overview of the technical solutionsof the present application. To facilitate better understanding of thetechnical solutions of the present application so that the technicalsolutions can be implemented according to the content of thespecification, and to make other objectives, features and advantages ofthe present application more clear, specific implementations of thepresent application are set forth in the following.

BRIEF DESCRIPTION OF DRAWINGS

By reading the following detailed description of the preferredimplementations, a variety of other advantages and benefits will becomeapparent to a person of ordinary skill in the art. The drawings aremerely used to illustrate the preferred implementations and are notintended to limit the present application. In the drawings, the samecomponents are denoted by the same reference numerals. In the drawings:

FIG. 1 is a flowchart illustrating a data transmission method, accordingto an implementation of the present application;

FIG. 2 is a schematic diagram illustrating a scenario in which a datatransmitter monitors sound wave information within a predetermineddistance, according to an implementation of the present application;

FIG. 3 is a flowchart illustrating a second data transmission method,according to an implementation of the present application;

FIG. 4 is a flowchart illustrating a third data transmission method,according to an implementation of the present application;

FIG. 5 is a schematic diagram illustrating an ALIPAY client home pagedisplayed on a mobile phone, according to an implementation of thepresent application;

FIG. 6 is a schematic diagram illustrating a QR code displayed duringelectronic payment transactions, according to an implementation of thepresent application;

FIG. 7 is a block diagram illustrating composition of a datatransmitter, according to an implementation of the present application;

FIG. 8 is a block diagram illustrating composition of another datatransmitter, according to an implementation of the present application;

FIG. 9 is a block diagram illustrating composition of a data receiver,according to an implementation of the present application;

FIG. 10 is a block diagram illustrating composition of another datareceiver, according to an implementation of the present application;

FIG. 11 is a block diagram illustrating composition of a datatransmission system, according to an implementation of the presentapplication;

FIG. 12 is a flowchart illustrating an example of a computer-implementedmethod for transmitting data between devices, according to animplementation of the present disclosure; and

FIG. 13 is a flowchart illustrating an example of a computer-implementedmethod for transmitting data between devices, according to animplementation of the present disclosure.

DESCRIPTION OF IMPLEMENTATIONS

Example implementations of the present disclosure are described in moredetail below with reference to the accompanying drawings. Although theexample implementations of the present disclosure are shown in thedrawings, it should be understood that the present disclosure can beimplemented in various forms and should not be limited by theimplementations illustrated here. On the contrary, these implementationsare provided so that the present disclosure can be fully understood, andthe scope of the present disclosure can be fully conveyed to a personskilled in the art.

An implementation of the present application provides a datatransmission method. The method is applied to a data transmitter. Asshown in FIG. 1, the method includes the following steps:

101. The data transmitter monitors sound wave information includingpredetermined security information within a predetermined distance.

When the data transmitter and a data receiver perform near-fieldtransmission, in order to ensure the security of the transmitted data,the data transmitter usually adds predetermined security information foridentity security authentication during the data transmission process.The predetermined security information is used as a certificate forestablishing “trusted” data transmission between the data receiver andthe data transmitter. Before receiving the data sent by the datatransmitter, the data receiver assesses the validity and security of thepredetermined security information to ensure security of the datainformation sent by the data transmitter. The predetermined securityinformation can include but is not limited to the following content:dynamic password information, time information, random code information,etc. The implementation of the present application imposes no limitationto the predetermined security information.

In the implementation of the present application, when the datatransmitter and the data receiver perform near-field transmission, thedata receiver acts as a sound source entity, loads the predeterminedsecurity information to the sound wave information, and broadcasts thesound wave information in all directions by using air as a medium sothat the data transmitter can obtain the predetermined securityinformation in the sound wave information. In actual applications,because the sound wave loses energy during the transmission process, thedata transmitter can detect and receive the sound wave information onlywithin the predetermined distance of the broadcast sound wave. Inaddition, there is a predetermined scan distance when the datatransmitter detects, through scanning, whether sound wave informationexists near the data transmitter. In other words, the data transmittercan scan sound wave information only within the predetermined distance.Therefore, the data transmitter can detect the sound wave informationonly when the following two necessary conditions are both met: first,within the predetermined distance of the sound wave broadcast by thedata receiver; second, within the predetermined distance within whichthe data transmitter can scan sound wave information.

For example, as shown in FIG. 2, the data transmitter is a smart phone,the data receiver is a personal computer, a predetermined distance towhich the personal computer broadcasts sound wave information is 1meter, and a predetermined distance within which the smart phone canscan sound wave information is 3 meters. In the implementation of thepresent application, a predetermined distance within which the smartphone can detect the sound wave information is less than or equal to 1meter. Although the predetermined distance within which the smart phonecan scan sound wave information is 3 meters, the predetermined distanceto which the sound source body (the personal computer) broadcasts thesound wave information is 1 meter, when an actual distance between thesound source body (the personal computer) and the smart phone is greaterthan 1 meter, the smart phone will not detect the sound waveinformation. The actual distance between the personal computer and thesmart phone needs to be shortened so that the data transmitter canobtain the sound wave information including the predetermined securityinformation. The previously described example in which the data receiveris a personal computer and the data transmitter is a smart phone is usedfor ease of description. It is worthwhile to note that the descriptionis not intended to limit the data receiver and the data transmitter inthe implementation of the present application only to the personalcomputer and the smart phone.

The predetermined distance to which the sound wave information isbroadcast depends on the maximum power at which the data receiver (soundsource body) sends the sound wave information. Different data receiversbroadcast sound wave information at different maximum powers. Apredetermined distance to which the sound wave is broadcast is longerwhen the maximum power of a sound source body is larger. A predetermineddistance to which a sound wave is broadcast is shorter when the maximumpower of a sound source body is smaller. The predetermined distancewithin which the data transmitter can scan sound wave informationdepends on the scanning hardware of the carrier installed on the datatransmitter. Alternatively, if the data transmitter has a scanningfunction, the predetermined distance within which sound wave informationcan be scanned depends on the scanning device of the data transmitter.Specific values of the predetermined distance to which the datatransmitter can broadcast the sound wave information and thepredetermined distance within which the data transmitter can scan soundwave information are not limited in the implementation of the presentapplication.

When the data transmitter user expects to perform near-fieldtransmission, the user selects the function of displaying the patterninformation in the data transmitter. After the user selects thefunction, the data transmitter starts to monitor the sound waveinformation including the predetermined security information within thepredetermined distance, monitors the sound wave information includingthe predetermined security information by using a real-time scanningmethod, and stops scanning when detecting the sound wave information.

In the implementation of the present application, the data transmitterincludes but is not limited to a mobile end-user device such as a smartphone, a tablet computer, a personal computer, a portable computer, etc.Alternatively, the data transmitter can be a preconfigured applicationor client software installed in the mobile end-user device. The specifictype of the data transmitter is not limited in the implementation of thepresent application.

102. The data transmitter parses the sound wave information and obtainsthe predetermined security information in the sound wave information.

The predetermined security information is used as a credit certificatefor data transmission between the data transmitter and the datareceiver. The data transmission continues only after the data receiversuccessfully authenticates the predetermined security information. Thedata transmitter parses the sound wave information and obtains thepredetermined security information in the sound wave information basedon the sound wave information detected in step 101.

The sound wave information transmitted by the data receiver is an analogsignal. If the data transmitter expects to obtain the predeterminedsecurity information in the sound wave information, the data transmitterneeds to convert the sound wave information from the analog signal intoa digital signal. After converting the sound wave information into thedigital signal, the data transmitter obtains a predetermined decodingrule for the predetermined security information, parses the sound waveinformation based on the predetermined decoding rule, and obtains thepredetermined security information carried in the sound waveinformation. The predetermined security information is displayed as aplaintext. The predetermined decoding rule is a decoding rule added tothe sound wave information in the process of generating the sound waveinformation based on the predetermined security information by the datareceiver. As such, the data transmitter obtaining the sound waveinformation can obtain the predetermined security information based onthe predetermined decoding rule.

In actual applications, in order to save the limited resources of thedata transmitter, the data transmitter directly obtain the predeterminedsecurity information in the form of a digital signal, after the datatransmitter obtains the sound wave information and converts the soundwave information from the analog signal into the digital signal. Thepredetermined security information is displayed as an undecodedciphertext. Pattern information is generated based on the predeterminedsecurity information in the form of a digital signal in step 103. Thedata receiver decodes the predetermined security information based onthe predetermined decoding rule, and authenticates the validity of thepredetermined security information. It is worthwhile to note that thepredetermined security information is loaded to the sound waveinformation by the data receiver, and then the data receiver decodes thepredetermined security information in the pattern information. Theprocess does not cause resource waste to the data receiver. In theimplementation of the present application, whether the data transmitterdecodes the sound wave information by using the predetermined decodingrule and obtains the predetermined security information is not limited.

103. The data transmitter generates pattern information based on thepredetermined security information and data information that is to besent.

After obtaining the predetermined security information, the datatransmitter encodes the predetermined security information and the datainformation that is to be sent to generate the pattern information. Thepattern information can include a QR code, a barcode, a variablebarcode, etc.

In actual applications, the data information transmitted by the datatransmitter by using the pattern information can include but is notlimited to the following content: private account information, privatefile information, video information, a web address, etc. The datainformation that is to be sent included in the pattern information canbe determined based on different application scenarios. When theapplication scenario is to transmit a video face to face, the generatedpattern information can include predetermined security information andvideo information. When the application scenario is electronic paymenttransaction, the generated pattern information includes at leastpredetermined security information, private account information, keyinformation of the account, etc. The application scenario is not limitedin the present implementation.

It is worthwhile to note that, due to the differences in the developmentenvironments and programming languages of data transmitters, duringgenerating of the pattern information, the encoding algorithm used needsto be adapted based on different development environments andprogramming languages. The development environment and programminglanguage of the data transmitter are not specifically limited.

104. The data transmitter outputs and displays the pattern information.

The data transmitter outputs and displays the pattern information sothat the data receiver obtains the pattern information and authenticatesthe predetermined security information in the pattern information toimplement data transmission.

In the data transmission method provided in the implementation of thepresent application, before the data transmitter transmits the data tothe data receiver, the data transmitter first monitors the sound waveinformation including the predetermined security information within thepredetermined distance, parses the detected sound wave information, andobtains the predetermined security information in the sound waveinformation. Then the data transmitter generates the pattern informationbased on the predetermined security information obtained and the datainformation that is to be sent. Finally, the data transmitter outputsand displays the pattern information after generating the patterninformation so that the data receiver authenticates the predeterminedsecurity information in the sound wave information. Compared with theexisting technology, the pattern information generated by the datatransmitter in the implementation of the present application includesthe predetermined security information generated by the data receiver.The predetermined security information is generated by the data receiverbased on a predetermined transmission period. Predetermined securityinformation sent in different predetermined transmission periods isdifferent. As such, the pattern information including the predeterminedsecurity information sent by the data transmitter dynamically changes.After the data receiver authenticates the predetermined securityinformation in the pattern information, secure data transmission can beperformed. The pattern information in the data transmitter is preventedfrom being stolen by a malicious user, thereby ensuring the security ofthe data information of the user of the data transmitter.

In a detailed implementation, the data transmitter usually is a mobileend-user device, and a preconfigured microphone in the mobile end-userdevice is an essential function of the mobile end-user device. Whenmonitoring the sound wave information including the predeterminedsecurity information within the predetermined distance, the datatransmitter invokes the preconfigured microphone to monitor the soundwave information including the predetermined security information withinthe predetermined distance. In other words, before transmitting the datainformation to the data receiver, the data transmitter activates themicrophone in the data transmitter, and monitors and receives the soundwave information within the predetermined distance by using themicrophone.

Optionally, in an implementation of the present application, before thedata transmitter obtains the predetermined security information, thedata transmitter sets a predetermined time threshold for obtaining thepredetermined security information. If the predetermined securityinformation is not successfully obtained within the predetermined time,the data transmission between the data transmitter and the data receiveris cancelled. If the predetermined security information is successfullyobtained within the predetermined time, the data transmission betweenthe data transmitter and the data receiver continues. For example, thepredetermined time threshold is 60 s. If the data transmitter starts toobtain the predetermined security information at 14:30:02 and cannotsuccessfully obtain the predetermined security information at 14:31:02,the data transmitter cancels or interrupts data transmission to the datareceiver. The previous description is merely an example. Settings of thepredetermined time threshold are not limited in the implementation ofthe present application.

The generating the pattern information based on the predeterminedsecurity information and the data information that is to be sentspecifically includes generating, by using a predetermined codingalgorithm, the pattern information based on the predetermined securityinformation and the data information that is to be sent. In actualapplications, the predetermined coding algorithm can be a codingalgorithm executed on a back end of the data transmitter. Alternatively,the predetermined coding algorithm can be a third-party QR codegenerating application invoked by the data transmitter, and thethird-party QR code generating application generates a QR code based onthe predetermined security information and the data information that isto be sent. It should be understood that the above description takes thecase where the pattern information is a QR code as an example, and thedescription is not intended to limit the pattern information to only aQR code.

The implementation of the present application further provides anotherdata transmission method. The method is applied to the data receiver. Asshown in FIG. 3, the method includes the following steps.

301. The data receiver generates sound wave information includingpredetermined security information and broadcasts the sound waveinformation.

In the implementation of the present application, the data receivertransmits the predetermined security information to the data transmitterby transmitting the sound wave information. The predetermined securityinformation is carried in the sound wave information. During thebroadcast of the sound wave information, if the data transmitter detectsthe sound wave information, the data transmitter can parse the soundwave information to obtain the predetermined security information anduse the predetermined security information as a certificate forestablishing “trusted” data transmission between the data receiver andthe data transmitter.

When the data receiver encodes the predetermined security information tothe sound wave information, the data receiver uses a predeterminedcoding rule to encode the predetermined security information to thesound wave information. In an implementation of the present application,before broadcasting the sound wave information, the data receiverconfigures a predetermined decoding rule corresponding to thepredetermined coding rule in the sound wave information, so that thedata transmitter obtains the predetermined decoding rule afterconverting the sound wave information from the analog signal into thedigital signal, and uses the predetermined decoding rule to parse thepredetermined security information in the sound wave information. Thedata transmitter generates pattern information by using the decodedpredetermined security information so that the data receiverauthenticates the validity of the predetermined security information.The data receiver can determine the validity and legitimacy of thepredetermined security information without decoding the predeterminedsecurity information.

In another implementation of the implementation of the presentapplication, before broadcasting the sound wave information, the datareceiver does not configure the predetermined decoding rulecorresponding to the predetermined coding rule in the sound waveinformation. When the data transmitter receives the sound waveinformation, the data transmitter obtains the undecoded predeterminedsecurity information and uses the undecoded predetermined securityinformation to generate the pattern information. The data receiverobtains the predetermined security information in the patterninformation of the data transmitter and determines that thepredetermined security information is undecoded. The data receiver firstdecodes the obtained predetermined security information based on thepredetermined decoding rule corresponding to the predetermined securityinformation, and then authenticates the validity of the predeterminedsecurity information.

For ease of description, an example in which time information carried inthe sound wave information is the predetermined security information isused for description. For example, the data receiver generates soundwave information including time information and broadcasts the soundwave information, and sets the period for broadcasting the sound waveinformation to 5 minutes before the broadcast or sets the period forbroadcasting the sound wave information to 10 minutes, etc. The timeinformation carried in the sound wave information is the current timeinformation of the data receiver. If the data receiver broadcasts thesound wave information at 08:00 for the first time, the predeterminedsecurity information in the sound wave information is 08/00.Alternatively, if the data receiver broadcasts the sound waveinformation at 08:10 for the first time, the predetermined securityinformation in the sound wave information is 08/10. For convenience ofdescription, the previously described implementation of the presentapplication uses the current time information of the data receiver asthe predetermined security information, but it should be clarified thatthe description is not intended to limit the predetermined securityinformation described in the implementation of the present applicationto only the current time information of the data receiver.

302. The data receiver obtains pattern information displayed by the datatransmitter.

The pattern information includes data information and the predeterminedsecurity information that is to be checked.

The method for obtaining the pattern information displayed by the datatransmitter can be but is not limited to, for example, obtaining thepattern information displayed by the data transmitter based on apredetermined data acquisition instruction. The methods for implementingthe predetermined data acquisition instruction include a scanningmethod, a method of shaking the data transmitter, a button triggeringmethod, a voice triggering method, and a track sliding method.

Among the methods for implementing the predetermined data acquisitioninstruction in the implementation of the present application, except thescanning method, other methods for implementing the predetermined dataacquisition instruction need to be set before data transmission. Forexample, the method of shaking the data transmitter is set as follows:shaking twice in the same single direction, shaking left and righttwice, shaking up and down three times, etc. The button triggeringmethod includes that the data receiver monitors a triggering status of apredetermined button. The predetermined button can be a physical buttonor a virtual button. When the data transmitter triggers thepredetermined button, the data receiver obtains the pattern informationdisplayed on the data transmitter. For a data transmitter with a touchscreen, after the data receiver sets a track sliding method in advance,the data receiver monitors a sliding status of the touch screen in thedata transmitter, and when the user of the data transmitter triggers aslide operation on the screen, the data receiver obtains the patterninformation. The above is a description of the predetermined dataacquisition instruction. The type of the predetermined data acquisitioninstruction in actual applications is not limited in the implementationof the present application.

303. The data receiver authenticates the predetermined securityinformation that is to be checked in the pattern information.

The process in which the data receiver authenticates the predeterminedsecurity information that is to be checked is the basis for establishingtrusted data transmission between the data receiver and the datatransmitter. If the authentication of the predetermined securityinformation that is to be checked succeeds, step 304 is performed. Ifthe authentication of the predetermined security information that is tobe checked fails, the pattern information including the data informationis ignored.

Based on the example in step 301, assume that the data receiverbroadcasts the predetermined security information at 15:20 on Feb. 12,2016, and the predetermined transmission period is set to 10 minutes,the data transmitter displays the pattern information at 15:25 on Feb.12, 2016, and the predetermined security information in the patterninformation is 15/20. After obtaining the pattern information, the datareceiver parses the pattern information and obtains the predeterminedsecurity information 15/20. It indicates that the predetermined securityinformation received by the data transmitter is the latest predeterminedsecurity information broadcast by the data receiver, and thepredetermined security information is successfully authenticated. Afterthe predetermined security information is successfully authenticated,authentication is performed on the data information in the patterninformation. If the data transmitter displays the pattern information at15:23 on Feb. 12, 2016, the predetermined security information in thepattern information is 15/18, and the latest time at which the datareceiver broadcasts the predetermined security information is 15:20 onFeb. 12, 2016, it indicates that the predetermined security information15/18 in the pattern information does not meet the requirement. Thus,here is risk that the pattern information is stolen by a malicious user,and therefore the pattern information that does not meet the requirementis ignored. It is worthwhile to note that the previous description isonly an exemplary example, and the type and specific content of thepredetermined security information are not limited in the implementationof the present application.

304. The data receiver obtains the data information in the patterninformation if the authentication of the predetermined securityinformation that is to be checked succeeds.

In the data transmission method provided in the implementation of thepresent application, before the data transmitter transmits the data tothe data receiver, the data transmitter first monitors the sound waveinformation including the predetermined security information within thepredetermined distance, parses the detected sound wave information, andobtains the predetermined security information in the sound waveinformation. Then the data transmitter generates the pattern informationbased on the predetermined security information obtained and the datainformation that is to be sent. Finally the data transmitter outputs anddisplays the pattern information after generating the patterninformation so that the data receiver authenticates the predeterminedsecurity information in the sound wave information. Compared with theexisting technology, the pattern information generated by the datatransmitter in the implementation of the present application includesthe predetermined security information generated by the data receiver.The predetermined security information is generated by the data receiverbased on a predetermined transmission period. Predetermined securityinformation sent in different predetermined transmission periods isdifferent. As such, the pattern information including the predeterminedsecurity information sent by the data transmitter dynamically changes.After the data receiver authenticates the predetermined securityinformation in the pattern information, secure data transmission can beperformed. The pattern information in the data transmitter is preventedfrom being stolen by a malicious user, thereby ensuring the security ofthe data information of the user of the data transmitter.

The method used by the data receiver to generate the sound waveinformation including the predetermined security information can includebut is not limited to invoking a preselected sound wave generator andgenerating the sound wave information based on the preselected soundwave generator. If the data receiver has a preconfigured sound wavegenerating module, the data receiver invokes the preconfigured soundwave generating module and generates the sound wave information based onthe preconfigured sound wave generating module. The preconfigured soundwave generating module includes the preselected sound wave generator. Ifthe data receiver has no preconfigured sound wave generating module, thedata receiver invokes a third party sound wave generator and generatesthe sound wave information based on the third party sound wavegenerator.

After generating the sound wave information, the data receiver needs tobroadcast the predetermined security information carried in the soundwave information, so that the data transmitter can obtain thepredetermined security information. The data receiver broadcasts thepredetermined security information carried in the sound waveinformation. The data receiver encodes the predetermined securityinformation to the sound wave information by using a predeterminedmodulation scheme and broadcasts the predetermined security informationthat is encoded and carried in the sound wave information based on apredetermined transmission period by using air as a medium. The purposeof encoding the predetermined security information by using thepredetermined modulation scheme is to place the predetermined securityinformation in the sound wave information for convenient transmission orprocessing.

In order to ensure the security of the data information of the datatransmitter, the data receiver can only receive the data sent by thedata transmitter after successfully authenticating the predeterminedsecurity information that is to be checked in the pattern information.If the authentication of the predetermined security information that isto be checked in the pattern information is unsuccessful, it indicatesthat the data information in the data transmitter is likely to be leakedor stolen, and the data receiver does not receive the data informationsent by the data transmitter. Therefore, the authentication of thepredetermined security information that is to be checked is the basisfor ensuring data security of the data transmitter. That the datareceiver authenticates the predetermined security information that is tobe checked includes the following steps: obtain the predeterminedsecurity information after the preconfigured sound wave generatingmodule or the third party sound wave generator sends the predeterminedsecurity information, parse the pattern information and obtain thepredetermined security information that is to be checked in the patterninformation, compare the predetermined security information and thepredetermined security information that is to be checked, and if thepredetermined security information and the predetermined securityinformation that is to be checked are consistent, determine that theauthentication of the predetermined security information that is to bechecked succeeds, or if the predetermined security information and thepredetermined security information that is to be checked areinconsistent, determine that the authentication of the predeterminedsecurity information that is to be checked fails and ignore the patterninformation including the data information.

In actual applications, when the data security requirement is high inthe data transmission process, after the data receiver has authenticatedthe predetermined security information in the data transmitter, the datareceiver further needs to authenticate the data information in thepattern information. For example, if the data information is privatefile information, authentication needs to be performed on the attributeof a hardware device of the data transmitter for the private fileinformation, such as the name of the device model corresponding to thedata transmitter. If the data information is capital transferinformation, the data receiver needs to send a notification message tothe server corresponding to the data transmitter so that the serverauthenticates the identity of the data transmitter. In the datatransmission process, when the data security requirement is relativelylow, after the data receiver has successfully authenticated thepredetermined security information in the data transmitter, the datareceiver can directly obtain the data information included in thepattern information.

It is worthwhile to note that in the implementation of the presentapplication, when near-field transmission is performed between the datatransmitter and the data receiver, the security of the patterninformation needs to be confirmed by using the predetermined securityinformation in the sound wave information, and after the authenticationof the reliability of the pattern information succeeds, the datatransmission continues. Because the predetermined security informationin the pattern information dynamically changes, the pattern informationdisplayed on the data transmitter dynamically changes accordingly. Inactual applications, it can be considered that the pattern informationdisplayed on the data transmitter changes in real time. Even if thepattern information is stolen by a malicious user, it will not harm theinterests of the user.

The process of data transmission between the data transmitter and thedata receiver is described above in detail. The implementation of thepresent application further provides a data transmission method. In themethod, an application scenario of using a QR code for face-to-faceelectronic payment is used as an example for description. Forconvenience of description, that the data transmitter is the ALIPAYclient installed in a mobile phone of the user A and the data receiveris a supermarket cash register device is used as an example fordescription. It should be understood that the description is notintended to limit the data transmitter and the data receiver in theimplementation of the present application to only the ALIPAY clientinstalled in the mobile phone and the supermarket cash register device.As shown in FIG. 4, a main procedure for the scenario includes thefollowing steps.

401. The supermarket cash register device generates sound waveinformation including predetermined security information and broadcaststhe sound wave information.

The supermarket cash register device invokes its own sound wavegenerating module and generates the sound wave information based on thesound wave generating module. Each piece of sound wave informationincludes predetermined security information. In the present applicationscenario, the predetermined security information is the current time forgenerating the sound wave information by the supermarket cash registerdevice, a predetermined distance to which the sound wave information canbe broadcast at the maximum power of the supermarket cash registerdevice for transmitting the sound wave information is 80 cm, and aperiod for broadcasting the sound wave information of the supermarketcash register device is 3 minutes. Assume that the last time thesupermarket cash register device sends sound wave information is 11:05,and the predetermined security information in the sound wave informationis 11/05.

402. The ALIPAY client monitors sound wave information includingpredetermined security information within a predetermined distance.

When user A makes an electronic payment for a product by using theALIPAY client, user A first triggers an ALIPAY client start command tostart the ALIPAY client. As shown in FIG. 5, at the current time of11:06, the user A taps the payment option in the homepage of the ALIPAYclient, and when the user A triggers the payment function, the ALIPAYclient invokes the microphone in the mobile phone and monitors the soundwave information including the predetermined security information withinthe predetermined distance by using the microphone. It is worthwhile tonote that in the application scenario, the mobile phone in which theALIAPY client is installed needs to be in an online state.

403. The ALIAPY client parses the sound wave information, obtains thepredetermined security information in the sound wave information, andgenerates a QR code based on the predetermined security information anddata information that is to be sent.

The ALIPAY client parses the sound wave information detected in step402, determines that the predetermined security information included inthe sound wave information is 11/05, and generates the QR code based onthe predetermined security information, the ALIPAY account information,and key information.

404. The ALIPAY client outputs and displays the QR code.

The pattern information is a QR code in the present applicationscenario. When the ALIPAY client generates the pattern information, theALIPAY client displays the QR code on the mobile phone so that thesupermarket cash register device can scan and recognize the informationincluded in the QR code. As shown in FIG. 6, FIG. 6 is a schematicdiagram illustrating a QR code displayed during electronic paymenttransaction, according to an implementation of the present application.A representation form of the pattern information in the ALIPAY client isnot limited.

405. The supermarket cash register device obtains the QR code displayedon the ALIPAY client.

The supermarket cash register device scans and recognizes the patterninformation displayed on the ALIPAY client based on its own scanidentification gun and obtains the predetermined security information inthe QR code.

406. The supermarket cash register device authenticates thepredetermined security information that is to be checked in the patterninformation.

If the authentication of the predetermined security information that isto be checked succeeds, step 407 is performed. If the authentication ofthe predetermined security information that is to be checked fails, step408 is performed.

The predetermined security information in the latest broadcast soundwave information obtained by the supermarket cash register device fromits database is 11/05, and if the predetermined security informationincluded in the QR code is also 11/05, it is determined that the currentdata transmission is secure. If the predetermined security informationincluded in the QR code is not 11/05, it is determined that a threat islikely to be imposed to the security of the user's data information inthe current data transmission.

407. The supermarket cash register device obtains the data informationin the QR code.

In the present implementation, because the transmitted data informationis the user's funds and the user's private data information is involved,in order to ensure the security of the user A's private information,before the data information is transmitted to the supermarket cashregister device, a server corresponding to the ALIPAY client needs tosend a text message authentication code to the mobile phone bound to theALIPAY client. After the verification of the text message authenticationcode succeeds, the near-field transmission is completed.

408. The supermarket cash register device ignores the patterninformation including the data information.

As an implementation of the method shown in FIG. 1, anotherimplementation of the present application further provides a datatransmitter. The apparatus implementation corresponds to the previouslydescribed method implementation. For convenience of reading, detailedcontent in the previously described method implementation is notdescribed in the implementation of the present application, but itshould be clear that the device in the present implementation canimplement all the content in the previously described methodimplementation.

The implementation of the present application provides a datatransmitter. As shown in FIG. 7, the data transmitter includes: amonitoring unit 71, configured to monitor sound wave informationincluding predetermined security information within a predetermineddistance; a parsing unit 72, configured to parse the sound waveinformation when the monitoring unit 71 detects the sound waveinformation including the predetermined security information within thepredetermined distance; an acquisition unit 73, configured to obtain thepredetermined security information in the sound wave information in theprocess in which the parsing unit 72 parses the sound wave information;a generating unit 74, configured to generate pattern information basedon the predetermined security information obtained by the acquisitionunit 73 and data information that is to be sent; and an output displayunit 75, configured to output display the pattern information generatedby the generating unit 74, so that a data receiver can obtain thepattern information.

The monitoring unit 71 is further configured to invoke a preselectedmicrophone to monitor the sound wave information including thepredetermined security information within the predetermined distance.

As shown in FIG. 8, the generating unit 74 further includes anacquisition module 741, configured to obtain the data information thatis to be sent; and a generating module 742, configured to generate, byusing a predetermined coding algorithm, the pattern information based onthe predetermined security information and the data information that isto be sent and obtained by the acquisition module 741.

An implementation of the present application provides a data receiver.As shown in FIG. 9, the data receiver includes a generating unit 91,configured to generate sound wave information including predeterminedsecurity information; a broadcast unit 92, configured to broadcast thesound wave information generated by the generating unit 91; a firstacquisition unit 93, configured to obtain pattern information displayedby a data transmitter, where the pattern information includes datainformation and predetermined security information that is to bechecked; an authentication unit 94, configured to authenticate thepredetermined security information that is to be checked and obtained bythe first acquisition unit 93; and a second acquisition unit 95,configured to obtain the data information in the pattern information ifthe authentication unit 94 determines that the authentication of thepredetermined security information that is to be checked succeeds.

The generating unit 91 invokes a preselected sound wave generator andgenerates the sound wave information including the predeterminedsecurity information based on the preselected sound wave generator.

As shown in FIG. 10, the generating unit 91 further includes a firstinvocation module 911, configured to invoke a preconfigured sound wavegenerating module in the data receiver, where the preconfigured soundwave generating module includes the preselected sound wave generator; afirst generating module 912, configured to generate the sound waveinformation including the predetermined security information based onthe preconfigured sound wave generating module invoked by the firstinvocation module 911; a second invocation module 913, configured toinvoke a third party sound wave generator; and a second generatingmodule 914, configured to generate the sound wave information includingthe predetermined security information based on the third party soundwave generator invoked by the second invocation module 913.

As shown in FIG. 10, the generating unit 91 encodes the predeterminedsecurity information to the sound wave information by using apredetermined modulation scheme.

The broadcast unit 92 broadcasts the sound wave information encoded bythe generating unit 91 based on a predetermined transmission period,where predetermined security information in sound wave information sentbased on different transmission periods is different.

As shown in FIG. 10, the authentication unit 94 further includes a firstacquisition module 941, configured to obtain the predetermined securityinformation after the preconfigured sound wave generating module or thethird party sound wave generator sends the sound wave informationincluding the predetermined security information; a parsing module 942,configured to parse the pattern information obtained by the firstacquisition module 941; a second acquisition module 943, configured toobtain the predetermined security information that is to be checked inthe pattern information in the process in which the parsing module 942parses the pattern information; a comparison module 944, configured tocompare the predetermined security information obtained by the firstacquisition module 941 and the predetermined security information thatis to be checked and obtained by the second acquisition module 943; afirst determining module 945, configured to determine that theauthentication of the predetermined security information that is to bechecked succeeds if the comparison module 944 determines that thepredetermined security information and the predetermined securityinformation that is to be checked are consistent; and a seconddetermining module 946, configured to determine that the authenticationof the predetermined security information that is to be checked fails ifthe comparison module 944 determines that the predetermined securityinformation and the predetermined security information that is to bechecked are inconsistent.

As shown in FIG. 10, the data receiver further includes an ignoring unit96, configured to ignore the pattern information including the datainformation, if the authentication unit 94 determines that theauthentication of the predetermined security information that is to bechecked fails.

The first acquisition unit 93 obtains the pattern information displayedby the data transmitter based on a predetermined data acquisitioninstruction. Methods for implementing the predetermined data acquisitioninstruction include a scanning method, a method of shaking the datatransmitter, a key triggering method, a voice triggering method, and atrack sliding method.

The implementations of the present application further provide a datatransmission system. As shown in FIG. 11, the system includes the datatransmitter 1101 shown in either of FIG. 7 or FIG. 8, and the datareceiver 1102 shown in either of FIG. 9 or FIG. 10.

According to the data transmitter, the data receiver, and the datatransmission system provided in the implementation of the presentapplication, before the data transmitter transmits the data to the datareceiver, the data transmitter first monitors the sound wave informationincluding the predetermined security information within thepredetermined distance, parses the detected sound wave information, andobtains the predetermined security information in the sound waveinformation. Then the data transmitter generates the pattern informationbased on the predetermined security information obtained and the datainformation that is to be sent. Finally the data transmitter outputs anddisplays the pattern information after generating the patterninformation so that the data receiver authenticates the predeterminedsecurity information in the sound wave information. Compared with theexisting technology, the pattern information generated by the datatransmitter in the implementation of the present application includesthe predetermined security information generated by the data receiver.The predetermined security information is generated by the data receiverbased on a predetermined transmission period. Predetermined securityinformation sent in different predetermined transmission periods isdifferent. As such, the pattern information including the predeterminedsecurity information sent by the data transmitter dynamically changes.After the data receiver has authenticated the predetermined securityinformation in the pattern information, secure data transmission can beperformed. The pattern information in the data transmitter is preventedfrom being stolen by a malicious user, thereby ensuring the security ofthe data information of the user of the data transmitter.

The data transmitter includes a processor and a memory. The monitoringunit, the parsing unit, the acquisition unit, the generating unit, andthe output display unit are all stored in the memory as program units.The processor executes the program units stored in the memory to achievethe corresponding functions.

The processor includes a kernel. The kernel invokes correspondingprogram units in the memory. There can be one or more kernels. Thekernel parameter can be adjusted to prevent the leakage of the patterninformation in the transmitter device, thereby ensuring the security ofthe data information of the user of the transmitter.

The memory can include a non-persistent memory, a random access memory(RAM), a non-volatile memory, and/or another form that are in a computerreadable medium, for example, a read-only memory (ROM) or a flash memory(flash RAM). The memory includes at least one storage chip.

The applications further provide a computer program product. When thecomputer program product is executed on a data processing device, aprogram code where the following method steps are initialized isexecuted: The data transmitter monitors sound wave information includingpredetermined security information within a predetermined distance,parses the sound wave information and obtains the predetermined securityinformation in the sound wave information, generates pattern informationbased on the predetermined security information and data informationthat is to be sent, and outputs and displays the pattern information sothat a data receiver can obtain the pattern information.

A person skilled in the art should understand that the implementationsof the present application can be provided as a method, a system, or acomputer program product. Therefore, the present application can use aform of hardware only implementations, software only implementations, orimplementations with a combination of software and hardware. Inaddition, the present application can use a form of a computer programproduct that is implemented on one or more computer-usable storage media(including but not limited to a disk memory, a CD-ROM, an opticalmemory, etc.) that include computer-usable program code.

The present application is described with reference to the flowchartsand/or block diagrams illustrating the graphic display method, theapparatus, and the computer program product according to theimplementations of the present application. It should be understood thatcomputer program instructions can be used to implement each processand/or each block in the flowcharts and/or the block diagrams and acombination of a process and/or a block in the flowcharts and/or theblock diagrams. These computer program instructions can be provided fora general-purpose computer, a dedicated computer, an embedded processor,or a processor of any other programmable data processing device togenerate a machine, so that the instructions executed by a computer or aprocessor of any other programmable data processing device generate anapparatus for implementing a specific function in one or more processesin the flowcharts and/or in one or more blocks in the block diagrams.

These computer program instructions can be stored in a computer readablememory that can instruct the computer or any other programmable dataprocessing device to work in a specific manner, so that the instructionsstored in the computer readable memory generate an artifact thatincludes an instruction apparatus. The instruction apparatus implementsa specific function in one or more processes in the flowcharts and/or inone or more blocks in the block diagrams.

These computer program instructions can be loaded onto a computer oranother programmable data processing device, so that a series ofoperations and steps are performed on the computer or anotherprogrammable device, thereby generating computer-implemented processing.Therefore, the instructions executed on the computer or anotherprogrammable device provide steps for implementing a specific functionin one or more processes in the flowcharts and/or in one or more blocksin the block diagrams.

In a typical configuration, the computer device includes one or moreprocessors (CPU), an input/output interface, an on-line interface, and amemory.

The memory can include a non-persistent memory, a random access memory(RAM), a non-volatile memory, and/or another form that are in a computerreadable medium, for example, a read-only memory (ROM) or a flash memory(flash RAM). The memory is an example of the computer readable medium.

The computer readable medium includes persistent, non-persistent,movable, and unmovable media that can implement information storage byusing any method or technology. Information can be a computer readableinstruction, a data structure, a program module, or other data. Anexample of a computer storage medium includes but is not limited to aphase-change random access memory (PRAM), a static random access memory(SRAM), a dynamic random access memory (DRAM), another type of randomaccess memory (RAM), a read-only memory (ROM), an electrically erasableprogrammable read-only memory (EEPROM), a flash memory or another memorytechnology, a compact disc read-only memory (CD-ROM), a digitalversatile disc (DVD) or other optical storage, a cassette magnetic tape,tape and disk storage or another magnetic storage device or any othernon-transmission media that can be configured to store information thata computing device can access. According to the definition in thepresent specification, the computer readable medium does not includetransitory computer-readable media (transitory media), such as amodulated data signal and a carrier.

The previous descriptions are merely implementations of the presentapplication, and are not used to limit the present application. For aperson skilled in the art, the present application can have variousmodifications and variations. Any modification, equivalent replacement,or improvement made without departing from the spirit and principle ofthe present application shall fall within the scope of the claims of thepresent application.

FIG. 12 is a flowchart illustrating an example of a computer-implementedmethod 1200 for transmitting data between devices, according to animplementation of the present disclosure. For clarity of presentation,the description that follows generally describes method 1200 in thecontext of the other figures in this description. However, it will beunderstood that method 1200 can be performed, for example, by anysystem, environment, software, and hardware, or a combination ofsystems, environments, software, and hardware, as appropriate. In someimplementations, various steps of method 1200 can be run in parallel, incombination, in loops, or in any order.

In general, the present application discloses a method of transmittingdata between two devices, such as a data transmitter and a datareceiver. The data transmitter may be a smart phone, a smart watch, atablet, or any other suitable computing device. The data receiver may bea personal computer, a point-of-sale, a smart watch, a tablet, or anyother suitable computing device. In some instances, the data transmitterand the data receiver may be the same type of device, including the samemodel. The data information to be shared across devices can be anysensitive information or data, including personally identifiableinformation (PII), financial data, documents or data files, images orvideo or other types of media, or any other types of information.

The solution described herein is meant to provide security for datatransmissions performed by two devices within a relatively close areafrom one another. For example, the devices may be performing anear-field transmission, or another method of device-to-devicecommunication. The data transmitter, a first device from which datainformation is to be sent to the second device (i.e., the datareceiver), can be used to monitor sound wave information provided by thedata receiver. The sound wave information can include predeterminedsecurity information that can only be obtained by the data transmitter,via a microphone or other input device, when the data transmitter iswithin a close enough range to pick up or capture the sound waveinformation. In some instances, that distance may be defined or modifiedto be a predetermined distance to enforce a relative closeness of thedevices before the data transmission can be performed. In someinstances, a predetermined distance within which the first device candetect the sound wave information is less than or equal to 1 meter fromthe data receiver. Although the predetermined distance within which thefirst device can scan sound wave information may be 3 meters, thepredetermined distance to which the data receiver (i.e., the seconddevice) broadcasts the sound wave information may be 1 meter, such thatwhen the data receiver is more than 1 meter from the data transmitter,the data transmitter will not detect the sound wave information. Inorder to authenticate the data transmission, the actual distance betweenthe first and second device must be lessened so that the datatransmitter can obtain the sound wave information including thepredetermined security information. The predetermined distance may varybased on the devices used, the relative range of security desired, andthe particular implementation to be used.

When the data transmitter and a data receiver perform near-fieldtransmissions, the data transmitter adds predetermined securityinformation for identity security authentication during the datatransmission process to ensure the security of the transmitted data. Thepredetermined security information is used to ensure trust between thedata receiver and the data transmitter prior to performing the datatransmission. Before receiving the data sent by the data transmitter,the data receiver confirms the validity and security of thepredetermined security information to ensure security of the datainformation sent by the data transmitter. The predetermined securityinformation can include, but is not limited to, dynamic passwordinformation, time information, and random code information, amongothers.

Turning to the illustrated implementation of FIG. 12, at 1202, a datatransmitter can perform monitoring operations for sound wave informationassociated with a data transmission that can be detected within apredetermined distance from a client device. To provide additionalsecurity, the sound wave information can include predetermined securityinformation that can be used to generate a trusted relationship betweenthe data transmitter and data receiver once verified. Data transmissionwill only continue and be performed once the data receiver successfullyauthenticates the predetermined security information provided by thedata transmitter (as originally obtained from the sound wave informationbroadcast from the data receiver).

The sound wave information transmitted by the data receiver may be ananalog signal, such that the data transmitter may need to convert thesound wave information into a digital signal before performingadditional operations.

In some instances, monitoring for sound wave information can includeinvoking, by the data transmitter, a microphone associated with the datatransmitter to monitor for sound wave information associated with afuture or ongoing data transmission. The monitoring can be for abroadcast of the sound wave information within the predetermineddistance from the data transmitter. From 1202, method 1200 proceeds to1204.

At 1204, sound wave information associated with the data transmissionand including the predetermined security information can be detected bythe data transmitter. The detection can be made by a microphoneassociated with the data transmitter, such as a standard microphone usedfor all input to the data transmitter or a dedicated microphone forcapturing the sound wave information. From 1204, method 1200 proceeds to1206.

At 1206, the detected sound wave information is parsed to obtain thepredetermined security information included in the detected soundinformation. Parsing the detected sound wave information where the soundwave information is an analog signal can include converting the detectedsound wave information into a digital signal. A predetermined decodingrule for the predetermined security information can be obtained, wherethe predetermined security information is then parsed based on thepredetermined decoding rule. The predetermining security information canthen be obtained from the decoded digital signal, where the securityinformation can then be used to authenticate the data transmission. From1206, method 1200 proceeds to 1208.

At 1208, pattern information based on the obtained predeterminedsecurity information and any data information to be sent by the datatransmitter to the data receiver can be generated. Generating thepattern information can include identifying the data information to besent to the data receiver and then generating, using a predeterminedcoding algorithm, the pattern information based on the obtainedpredetermined security information and the identified data informationto be sent. The data information may include, for example, privateaccount information, private file information, media files, videoinformation, payment credentials, or financial account information,among others. The pattern information can be or include a QR code, abarcode, a variable barcode, or any other encoded pattern used totransmit the data information. From 1208, method 1200 proceeds to 1210.

At 1210, the generated pattern information can be displayed to allow asecond device (i.e., the data receiver) to obtain the generated patterninformation to perform an authentication of the data transmitter andallow the data transmission to be performed. As the data to betransmitted is included in the generated pattern information, once thedata receiver verifies the predetermined security information, the datareceiver can immediately access and receive the data information. Thedata information can be used to perform any suitable or responsiveaction as required or needed in the data transmission, including storingthe data, forwarding the data, and/or acting upon the data (e.g., tocomplete a transaction). After 1210, method 1200 stops.

FIG. 13 is a flowchart illustrating an example of a computer-implementedmethod for transmitting data between devices, according to animplementation of the present disclosure. For clarity of presentation,the description that follows generally describes method 1300 in thecontext of the other figures in this description. However, it will beunderstood that method 1300 can be performed, for example, by anysystem, environment, software, and hardware, or a combination ofsystems, environments, software, and hardware, as appropriate. In someimplementations, various steps of method 1300 can be run in parallel, incombination, in loops, or in any order. The operations of method 1300can be performed, in one example, by a first device representing a datareceiver, or a device at which data information is to be transmitted ina data transmission from a second device that is a data transmitter.

At 1302, sound wave information can be generated, where the sound waveinformation includes a first set of predetermined security informationfor us in identity security authentication for any future datatransmission processes with a second device. When the data receiverencodes the predetermined security information to the sound waveinformation, the data receiver can use a predetermined coding rule toencode the predetermined security information to the sound waveinformation. In one implementation, before broadcasting the sound waveinformation, the data receiver can configure or identify a predetermineddecoding rule corresponding to the predetermined coding rule in thesound wave information, so that the data transmitter obtains thepredetermined decoding rule after converting the sound wave informationfrom the analog signal into the digital signal, and uses thepredetermined decoding rule to parse the predetermined securityinformation in the sound wave information. The data transmitter can thengenerate pattern information by using the decoded predetermined securityinformation so that the data receiver authenticates the validity of thepredetermined security information. The data receiver can determine thevalidity and legitimacy of the predetermined security informationwithout decoding the predetermined security information. In otherinstances, before broadcasting the sound wave information, the datareceiver does not configure the predetermined decoding rulecorresponding to the predetermined coding rule in the sound waveinformation. When the data transmitter receives the sound waveinformation, the data transmitter obtains the undecoded predeterminedsecurity information and uses the undecoded predetermined securityinformation to generate the pattern information.

In some instances, the first set of predetermined security informationmay comprise time information carried in the sound wave information. Aperiod of time may be set so that the time information is valid for aparticular period of time. If the data receiver broadcasts the soundwave information at 08:00 for the first time, the predetermined securityinformation in the sound wave information is 08/00. Alternatively, ifthe data receiver broadcasts the sound wave information at 08:10 for thefirst time, the predetermined security information in the sound waveinformation is 08/10. This information can be used to confirm that thesecurity information provided by the data transmitter is still valid andcorresponds to the first set of predetermined security information.

In some instances, generating the sound wave information can includeinvoking a preselected sound wave generator and generating the soundwave information comprising the predetermined security information basedon the preselected sound wave generator. In some instances, invoking thepreselected sound wave generator and generating the sound waveinformation comprising the predetermined security information based onthe preselected sound wave generator can further include invoking apreconfigured sound wave generator in the first device and generatingthe sound wave information comprising the first set of predeterminedsecurity information based on the preconfigured sound wave generator,wherein the preconfigured sound wave generator comprises the preselectedsound wave generator. Alternatively, a third party sound wave generatorcan be invoked to generate the sound wave information comprising thefirst set of predetermined security information based on the third partysound wave generator. In other instances, generating the sound waveinformation can include encoding the first set of predetermined to thesound wave information using a predetermined modulation scheme.

At 1304, the generated sound wave information can be broadcast. Duringthe broadcast of the sound wave information, if the data transmitterdetects the sound wave information, the data transmitter can parse thesound wave information to obtain the predetermined security informationand use the predetermined security information as a certificate forestablishing “trusted” data transmission between the data receiver andthe data transmitter. In some instances, broadcasting the generatedsound wave information can include broadcasting the encoded sound waveinformation based on a predetermined transmission period, where thefirst set of predetermined security information differs in eachdifferent transmission period. Further, broadcasting the generated soundwave information can include broadcasting the generated sound waveinformation in all direction by using air as a medium, such that thegenerated sound wave information is detectable only within apredetermined distance from the first device. From 1304, method 1300proceeds to 1306.

At 1306, pattern information displayed by the second device is obtained,where the pattern information includes data information to betransmitted to the data receiver and a second set of predeterminedsecurity information.

At 1308, a determination is made as to whether the second set ofpredetermined security information corresponds to the first set ofpredetermined security information initially included in the broadcastsound wave information. The determination can be made via any suitableauthentication technique.

In one instance, determining via the authentication technique whetherthe second set of predetermined security information corresponds to thefirst set of predetermined security information can include parsing theobtained pattern information to obtain the second set of predeterminedsecurity information, comparing the first set of predetermined securityinformation and the second set of predetermined security information todetermine whether the first and second set match, and, in response todetermining that the first set of predetermined security information andthe second set of predetermined security information match, determiningthat the obtained pattern information is authenticated.

In other instances, a match may not be necessary to determine that thefirst set of predetermined security information corresponds to thesecond set of predetermined security information, but can instead beevaluated based on any suitable authentication comparison or analysis.For example, if the security information is a time-based value, if thetime information within the second set of predetermined securityinformation is within a particular time frame relative to the timeinformation of the second set of predetermined security information,then the correspondence can be confirmed.

If it is determined that the security information corresponds to oneanother, method 1300 proceeds to 1312. At 1312, data information fromthe obtained pattern information from the data transmitter can beobtained, as the data transmission is determined to be allowed.Otherwise, if it is determined that they do not correspond, method 1300proceeds to 1310. At 1310, the pattern information, and in particular,the data information within the pattern information, is ignored and nodata transmission is performed. After 1310 or 1312, method 1300 stops.

Embodiments and the operations described in this specification can beimplemented in digital electronic circuitry, or in computer software,firmware, or hardware, including the structures disclosed in thisspecification or in combinations of one or more of them. The operationscan be implemented as operations performed by a data processingapparatus on data stored on one or more computer-readable storagedevices or received from other sources. A data processing apparatus,computer, or computing device may encompass apparatus, devices, andmachines for processing data, including by way of example a programmableprocessor, a computer, a system on a chip, or multiple ones, orcombinations, of the foregoing. The apparatus can include specialpurpose logic circuitry, for example, a central processing unit (CPU), afield programmable gate array (FPGA) or an application-specificintegrated circuit (ASIC). The apparatus can also include code thatcreates an execution environment for the computer program in question,for example, code that constitutes processor firmware, a protocol stack,a database management system, an operating system (for example anoperating system or a combination of operating systems), across-platform runtime environment, a virtual machine, or a combinationof one or more of them. The apparatus and execution environment canrealize various different computing model infrastructures, such as webservices, distributed computing and grid computing infrastructures.

A computer program (also known, for example, as a program, software,software application, software module, software unit, script, or code)can be written in any form of programming language, including compiledor interpreted languages, declarative or procedural languages, and itcan be deployed in any form, including as a stand-alone program or as amodule, component, subroutine, object, or other unit suitable for use ina computing environment. A program can be stored in a portion of a filethat holds other programs or data (for example, one or more scriptsstored in a markup language document), in a single file dedicated to theprogram in question, or in multiple coordinated files (for example,files that store one or more modules, sub-programs, or portions ofcode). A computer program can be executed on one computer or on multiplecomputers that are located at one site or distributed across multiplesites and interconnected by a communication network.

Processors for execution of a computer program include, by way ofexample, both general- and special-purpose microprocessors, and any oneor more processors of any kind of digital computer. Generally, aprocessor will receive instructions and data from a read-only memory ora random-access memory or both. The essential elements of a computer area processor for performing actions in accordance with instructions andone or more memory devices for storing instructions and data. Generally,a computer will also include, or be operatively coupled to receive datafrom or transfer data to, or both, one or more mass storage devices forstoring data. A computer can be embedded in another device, for example,a mobile device, a personal digital assistant (PDA), a game console, aGlobal Positioning System (GPS) receiver, or a portable storage device.Devices suitable for storing computer program instructions and datainclude non-volatile memory, media and memory devices, including, by wayof example, semiconductor memory devices, magnetic disks, andmagneto-optical disks. The processor and the memory can be supplementedby, or incorporated in, special-purpose logic circuitry.

Mobile devices can include handsets, user equipment (UE), mobiletelephones (for example, smartphones), tablets, wearable devices (forexample, smart watches and smart eyeglasses), implanted devices withinthe human body (for example, biosensors, cochlear implants), or othertypes of mobile devices. The mobile devices can communicate wirelessly(for example, using radio frequency (RF) signals) to variouscommunication networks (described below). The mobile devices can includesensors for determining characteristics of the mobile device's currentenvironment. The sensors can include cameras, microphones, proximitysensors, GPS sensors, motion sensors, accelerometers, ambient lightsensors, moisture sensors, gyroscopes, compasses, barometers,fingerprint sensors, facial recognition systems, RF sensors (forexample, Wi-Fi and cellular radios), thermal sensors, or other types ofsensors. For example, the cameras can include a forward- or rear-facingcamera with movable or fixed lenses, a flash, an image sensor, and animage processor. The camera can be a megapixel camera capable ofcapturing details for facial and/or iris recognition. The camera alongwith a data processor and authentication information stored in memory oraccessed remotely can form a facial recognition system. The facialrecognition system or one-or-more sensors, for example, microphones,motion sensors, accelerometers, GPS sensors, or RF sensors, can be usedfor user authentication.

To provide for interaction with a user, embodiments can be implementedon a computer having a display device and an input device, for example,a liquid crystal display (LCD) or organic light-emitting diode(OLED)/virtual-reality (VR)/augmented-reality (AR) display fordisplaying information to the user and a touchscreen, keyboard, and apointing device by which the user can provide input to the computer.Other kinds of devices can be used to provide for interaction with auser as well; for example, feedback provided to the user can be any formof sensory feedback, for example, visual feedback, auditory feedback, ortactile feedback; and input from the user can be received in any form,including acoustic, speech, or tactile input. In addition, a computercan interact with a user by sending documents to and receiving documentsfrom a device that is used by the user; for example, by sending webpages to a web browser on a user's client device in response to requestsreceived from the web browser.

Embodiments can be implemented using computing devices interconnected byany form or medium of wireline or wireless digital data communication(or combination thereof), for example, a communication network. Examplesof interconnected devices are a client and a server generally remotefrom each other that typically interact through a communication network.A client, for example, a mobile device, can carry out transactionsitself, with a server, or through a server, for example, performing buy,sell, pay, give, send, or loan transactions, or authorizing the same.Such transactions may be in real time such that an action and a responseare temporally proximate; for example an individual perceives the actionand the response occurring substantially simultaneously, the timedifference for a response following the individual's action is less than1 millisecond (ms) or less than 1 second (s), or the response is withoutintentional delay taking into account processing limitations of thesystem.

Examples of communication networks include a local area network (LAN), aradio access network (RAN), a metropolitan area network (MAN), and awide area network (WAN). The communication network can include all or aportion of the Internet, another communication network, or a combinationof communication networks. Information can be transmitted on thecommunication network according to various protocols and standards,including Long Term Evolution (LTE), 5G, IEEE 802, Internet Protocol(IP), or other protocols or combinations of protocols. The communicationnetwork can transmit voice, video, biometric, or authentication data, orother information between the connected computing devices.

Features described as separate implementations may be implemented, incombination, in a single implementation, while features described as asingle implementation may be implemented in multiple implementations,separately, or in any suitable sub-combination. Operations described andclaimed in a particular order should not be understood as requiring thatthe particular order, nor that all illustrated operations must beperformed (some operations can be optional). As appropriate,multitasking or parallel-processing (or a combination of multitaskingand parallel-processing) can be performed.

What is claimed is:
 1. A computer-implemented method, comprising:determining, by a first device, a start time and a duration period forbroadcasting sound wave information; generating, by the first device, afirst set of predetermined security information based at least in parton the start time; generating, by the first device, sound waveinformation, the sound wave information comprising the first set ofpredetermined security information for use in identity securityauthentication for a data transmission process with a second device;broadcasting, by the first device, the sound wave information startingat the start time and for a period of time equal to the duration period;obtaining, by the first device, visual pattern information displayed bythe second device, wherein the visual pattern information comprises datainformation and a second set of predetermined security informationcomprising a specified time, wherein the data information comprisespayment information of an account of a user of the second device;determining, by the first device and via an authentication technique,that the specified time is within the duration period; and in responseto determining that the specified time is within the duration period:obtaining the data information comprising the payment information fromthe visual pattern information; and completing, by the first device, atransaction using the payment information.
 2. The computer-implementedmethod of claim 1, wherein generating the sound wave informationcomprises invoking a preselected sound wave generator and generating thesound wave information comprising the first set of predeterminedsecurity information based on the preselected sound wave generator. 3.The computer-implemented method of claim 2, wherein invoking thepreselected sound wave generator and generating the sound waveinformation comprising the first set of predetermined securityinformation based on the preselected sound wave generator comprises:invoking a preconfigured sound wave generator in the first device andgenerating the sound wave information comprising the first set ofpredetermined security information based on the preconfigured sound wavegenerator, wherein the preconfigured sound wave generator comprises thepreselected sound wave generator; or invoking a third party sound wavegenerator and generating the sound wave information comprising the firstset predetermined security information based on the third party soundwave generator.
 4. The computer-implemented method of claim 1, whereingenerating the sound wave information comprises encoding the first setof predetermined to the sound wave information using a predeterminedmodulation scheme.
 5. The computer-implemented method of claim 1,wherein determining that the specified time is within the durationperiod comprises parsing the visual pattern information to obtain thespecified time, the method comprising, in response to determining thatthe specified time is within the duration period, determining that thevisual pattern information is authenticated.
 6. The computer-implementedmethod of claim 1, wherein broadcasting, by the first device, the soundwave information comprises broadcasting the sound wave information inall directions using air as a medium, and wherein the sound waveinformation is detectable only within a predetermined distance from thefirst device.
 7. A non-transitory, computer-readable medium storing oneor more instructions executable by a computer system to performoperations comprising: determining, by a first device, a start time anda duration period for broadcasting sound wave information; generating,by the first device, a first set of predetermined security informationbased at least in part on the start time; generating, by the firstdevice, sound wave information, the sound wave information comprisingthe first set of predetermined security information for use in identitysecurity authentication for a data transmission process with a seconddevice; broadcasting, by the first device, the sound wave informationstarting at the start time and for a period of time equal to theduration period; obtaining, by the first device, visual patterninformation displayed by the second device, wherein the visual patterninformation comprises data information and a second set of predeterminedsecurity information comprising a specified time, wherein the datainformation comprises payment information of an account of a user of thesecond device; determining, by the first device and via anauthentication technique, that the specified time is within the durationperiod; and in response to determining that the specified time is withinthe duration period: obtaining the data information comprising thepayment information from the visual pattern information; and completing,by the first device, a transaction using the payment information.
 8. Thenon-transitory, computer-readable medium of claim 7, wherein generatingthe sound wave information comprises invoking a preselected sound wavegenerator and generating the sound wave information comprising the firstset of predetermined security information based on the preselected soundwave generator.
 9. The non-transitory, computer-readable medium of claim8, wherein invoking the preselected sound wave generator and generatingthe sound wave information comprising the first set of predeterminedsecurity information based on the preselected sound wave generatorcomprises: invoking a preconfigured sound wave generator in the firstdevice and generating the sound wave information comprising the firstset of predetermined security information based on the preconfiguredsound wave generator, wherein the preconfigured sound wave generatorcomprises the preselected sound wave generator; or invoking a thirdparty sound wave generator and generating the sound wave informationcomprising the first set predetermined security information based on thethird party sound wave generator.
 10. The non-transitory,computer-readable medium of claim 7, wherein generating the sound waveinformation comprises encoding the first set of predetermined to thesound wave information using a predetermined modulation scheme.
 11. Thenon-transitory, computer-readable medium of claim 7, whereinbroadcasting, by the first device, the sound wave information comprisesbroadcasting the sound wave information in all directions using air as amedium, and wherein the sound wave information is detectable only withina predetermined distance from the first device.
 12. Acomputer-implemented system, comprising: one or more computers; and oneor more computer memory devices interoperably coupled with the one ormore computers and having tangible, non-transitory, machine-readablemedia storing one or more instructions that, when executed by the one ormore computers, perform one or more operations comprising: determining,by a first device, a start time and a duration period for broadcastingsound wave information; generating, by the first device, a first set ofpredetermined security information based at least in part on the starttime; generating, by the first device, sound wave information, the soundwave information comprising the first set of predetermined securityinformation for use in identity security authentication for a datatransmission process with a second device; broadcasting, by the firstdevice, the sound wave information starting at the start time and for aperiod of time equal to the duration period; obtaining, by the firstdevice, visual pattern information displayed by the second device,wherein the visual pattern information comprises data information and asecond set of predetermined security information comprising a specifiedtime, wherein the data information comprises payment information of anaccount of a user of the second device; determining, by the first deviceand via an authentication technique, that the specified time is withinthe duration period; and in response to determining that the specifiedtime is within the duration period: obtaining the data informationcomprising the payment information from the visual pattern information;and completing, by the first device, a transaction using the paymentinformation.
 13. The computer-implemented system of claim 12, whereingenerating the sound wave information comprises invoking a preselectedsound wave generator and generating the sound wave informationcomprising the first set of predetermined security information based onthe preselected sound wave generator.
 14. The computer-implementedsystem of claim 13, wherein invoking the preselected sound wavegenerator and generating the sound wave information comprising the firstset of predetermined security information based on the preselected soundwave generator comprises: invoking a preconfigured sound wave generatorin the first device and generating the sound wave information comprisingthe first set of predetermined security information based on thepreconfigured sound wave generator, wherein the preconfigured sound wavegenerator comprises the preselected sound wave generator; or invoking athird party sound wave generator and generating the sound waveinformation comprising the first set predetermined security informationbased on the third party sound wave generator.
 15. Thecomputer-implemented system of claim 12, wherein generating the soundwave information comprises encoding the first set of predetermined tothe sound wave information using a predetermined modulation scheme.